OPeNDAP Server3 Remote Command Execution Vulnerability
BID:23719
Info
OPeNDAP Server3 Remote Command Execution Vulnerability
| Bugtraq ID: | 23719 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-2355 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 30 2007 12:00AM |
| Updated: | May 07 2015 05:39PM |
| Credit: | The vendor disclosed this issue. |
| Vulnerable: |
OPeNDAP Server3 3.7.4 OPeNDAP Server3 3.2.10 |
| Not Vulnerable: |
OPeNDAP Hyrax 1.2 |
Discussion
OPeNDAP Server3 Remote Command Execution Vulnerability
OPeNDAP is prone to a remote command-execution vulnerability because the application fails to properly sanitize user-supplied input.
Exploiting this issue allows attackers to execute arbitrary commands in the context of the server.
A successful exploit could facilitate the compromise of an affected computer; other attacks are also possible.
OpeNDAP Server3 3.2.10 through to 3.7.4 are vulnerable to this issue.
OPeNDAP is prone to a remote command-execution vulnerability because the application fails to properly sanitize user-supplied input.
Exploiting this issue allows attackers to execute arbitrary commands in the context of the server.
A successful exploit could facilitate the compromise of an affected computer; other attacks are also possible.
OpeNDAP Server3 3.2.10 through to 3.7.4 are vulnerable to this issue.
Exploit / POC
OPeNDAP Server3 Remote Command Execution Vulnerability
Attackers can exploit this issue via a browser.
Attackers can exploit this issue via a browser.
Solution / Fix
OPeNDAP Server3 Remote Command Execution Vulnerability
Solution:
The vendor states that Hyrax (Server4) is not vulnerable to this issue. The vendor has also released a patch for Server3 software. Please see the references for more information.
OPeNDAP Server3 3.2.10
OPeNDAP Server3 3.7.4
Solution:
The vendor states that Hyrax (Server4) is not vulnerable to this issue. The vendor has also released a patch for Server3 software. Please see the references for more information.
OPeNDAP Server3 3.2.10
-
OPeNDAP server3-patch-04.27.2007.txt
http://www.opendap.org/server3-patch-04.27.2007.txt
OPeNDAP Server3 3.7.4
-
OPeNDAP server3-patch-04.27.2007.txt
http://www.opendap.org/server3-patch-04.27.2007.txt
References
OPeNDAP Server3 Remote Command Execution Vulnerability
References:
References:
- CGI Server Base Software Page (OPeNDAP)
- OPeNDAP Home Page (OPeNDAP)
- Vulnerability Note VU#857153 (US-CERT)